Total
12390 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2009-3961 | 1 Jos De Ruijter | 1 Superseriousstats | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in user.php in Super Serious Stats (aka superseriousstats) before 1.1.2p1 allows remote attackers to execute arbitrary SQL commands via the uid parameter, related to an "incorrect regexp." NOTE: some of these details are obtained from third party information. | |||||
CVE-2008-6329 | 1 Preproject | 1 Pre Asp Job Board | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in Employee/login.asp in Pre ASP Job Board allows remote attackers to execute arbitrary SQL commands via the (1) Username and (2) Password parameters, as reachable from Employee/emp_login.asp. NOTE: some of these details are obtained from third party information. | |||||
CVE-2008-6462 | 2 Kurt Gusbeth, Typo3 | 2 Myquizpoll, Typo3 | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in the My quiz and poll (myquizpoll) extension before 0.1.4 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | |||||
CVE-2008-5650 | 1 Alstrasoft | 1 Webhost Directory | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in the login directory in AlstraSoft Web Host Directory allows remote attackers to execute arbitrary SQL commands via the pwd parameter. | |||||
CVE-2008-5208 | 2 Joomla, Mambo | 3 Com Datsogallery, Joomla, Mambo | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in sub_votepic.php in the Datsogallery (com_datsogallery) module 1.6 for Joomla! allows remote attackers to execute arbitrary SQL commands via the User-Agent HTTP header. | |||||
CVE-2009-4059 | 2 .joomclan, Joomla | 2 Com Joomclip, Joomla\! | 2024-02-28 | 6.8 MEDIUM | N/A |
SQL injection vulnerability in the JoomClip (com_joomclip) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the cat parameter in a thumbs action to index.php. | |||||
CVE-2008-2412 | 1 Acgv.free | 1 Acgv News | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in glossaire.php in ACGV News 0.9.1 allows remote attackers to execute arbitrary SQL commands via the id parameter. | |||||
CVE-2008-5336 | 1 Bdigital Web Solutions | 1 Webstudio Cms | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in index.php in WebStudio CMS allows remote attackers to execute arbitrary SQL commands via the pageid parameter. | |||||
CVE-2008-4765 | 1 Oscommerce | 2 Online Merchant, Poll Booth | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in pollBooth.php in osCommerce Poll Booth Add-On 2.0 allows remote attackers to execute arbitrary SQL commands via the pollID parameter in a results operation. NOTE: this issue was disclosed by an unreliable researcher, so it might be incorrect. | |||||
CVE-2008-4523 | 1 Ip Reg | 1 Ip Reg | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in login.php in IP Reg 0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the user_name parameter. | |||||
CVE-2008-3310 | 1 Preproject | 1 Pre Survey Poll | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in default.asp in Pre Survey Poll allows remote attackers to execute arbitrary SQL commands via the catid parameter. | |||||
CVE-2008-2265 | 1 Emophp | 1 Emo Realty Manager | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in news.php in EMO Realty Manager allows remote attackers to execute arbitrary SQL commands via the ida parameter. | |||||
CVE-2008-2901 | 1 Haudenschilt | 1 Family Connections Cms | 2024-02-28 | 6.5 MEDIUM | N/A |
Multiple SQL injection vulnerabilities in Haudenschilt Family Connections CMS (FCMS) 1.4 allow remote authenticated users to execute arbitrary SQL commands via the (1) address parameter to addressbook.php, the (2) getnews parameter to familynews.php, and the (3) poll_id parameter to home.php in a results action. | |||||
CVE-2008-3152 | 1 Orbitscripts | 2 Smartppc, Smartppc Pro | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in directory.php in SmartPPC and SmartPPC Pro allows remote attackers to execute arbitrary SQL commands via the idDirectory parameter. | |||||
CVE-2008-7003 | 1 The-rat-cms | 1 The-rat-cms | 2024-02-28 | 7.5 HIGH | N/A |
Multiple SQL injection vulnerabilities in login.php in The Rat CMS Alpha 2 allow remote attackers to execute arbitrary SQL commands via the (1) user_id and (2) password parameter. | |||||
CVE-2009-0739 | 1 Frankmancuso | 1 Mynews | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in login.php in MyNews 0.10 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) passwd parameters. | |||||
CVE-2008-6970 | 1 Ubbcentral | 1 Ubb.threads | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in dosearch.inc.php in UBB.threads 7.3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the Forum[] array parameter. | |||||
CVE-2008-6028 | 1 University Of Queensland | 1 Fez | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in list.php in University of Queensland Library Fez 1.3 and 2.0 RC1 allows remote attackers to execute arbitrary SQL commands via the parent_id parameter in a subject action. | |||||
CVE-2008-4658 | 1 Typo3 | 2 Jobcontrol, Typo3 | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in the JobControl (dmmjobcontrol) 1.15.4 and earlier extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | |||||
CVE-2008-2504 | 1 Simpel Side | 1 Netbutik | 2024-02-28 | 7.5 HIGH | N/A |
Multiple SQL injection vulnerabilities in Simpel Side Netbutik 1 through 4 allow remote attackers to execute arbitrary SQL commands via the (1) cat parameter to netbutik.php and the (2) id parameter to product.php. |